• Welcome to Overclockers Forums! Join us to reply in threads, receive reduced ads, and to customize your site experience!

HELP on SECURITY

Overclockers is supported by our readers. When you click a link to make a purchase, we may earn a commission. Learn More.

diehrd

Senior SMP Gawd
Joined
Jan 15, 2001
Location
NY
HI ALL IN MY EVENT VIEWER HAVE THIS WARRNING ////

A provider HiPerfCooker_v1 , HAs been regestered in the WMI namespace,Root\WMI,to use the local system account.This account is priviledged and the provider may cause a security violation if it does not correctly impersonate user requests..

Any one know what this means ?? Has some one gained access to my computer allowing them to impersonate as a valid user ?

How do I find this user if thats what this is ? How do I disable this user if that is what it is ??

Any help would let me sleep better for sure LOL........................
 

turd

Member
Joined
Sep 16, 2001
Check this MSDN link to read about "Cooked Counter Provider"

http://msdn.microsoft.com/library/d.../en-us/wmisdk/wmi/cooked_counter_provider.asp

Here is another link that may help:

http://www.winnetmag.com/Articles/Index.cfm?ArticleID=7937&pg=2

and another:
http://msdn.microsoft.com/library/d...e__obtaining_statistical_performance_data.asp

Seems to be not security related in the sense of someone hacking, but seems that kernal call was made at an inaccessable level
perhaps it was related to a device driver or some HD monitoring software?
 
Last edited:
OP
diehrd

diehrd

Senior SMP Gawd
Joined
Jan 15, 2001
Location
NY
I thank you !!!! I will sleep better because of your help....